CVE-2024-44796 | PicUploader fcf82ea /auth/AzureRedirect.php error_description cross site scripting (ID 90)

Inserito da Angelo Barbosa | Ago 26, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in PicUploader fcf82ea. Affected by this issue is some unknown functionality of the file /auth/AzureRedirect.php. The manipulation of the argument error_description leads to cross site scripting.

This vulnerability is handled as CVE-2024-44796. The attack may be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-44796 | PicUploader fcf82ea /auth/AzureRedirect.php error_description cross site scripting (ID 90)

Post correlati

CVE-2023-40155 | Intel CST prior 2.1.10300 uncontrolled search path (intel-sa-01021)

CVE-2024-38271 | Google Nearby prior 1.0.1724.0 denial of service

CVE-2024-7470 | Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 3.90 Web Interface vpn_template_style.php sslvpn_config_mod template/stylenum os command injection

CVE-2023-44402 | Electron up to 23.3.13 data authenticity (GHSA-7m48-wc93-9g85)